HP-UX Directory Server 8.1 schema reference

Single-valuedMulti- or Single-Valued

Directory ServerDefined in

4.1.26 passwordGraceUserTime

This attribute counts the number of attempts the user has made with the expired password.

2.16.840.1.113730.3.1.998OID

DirectoryStringSyntax

Single-valuedMulti- or Single-Valued

Directory ServerDefined in

4.1.27 passwordHistory

This attribute contains the history of the user’s previous passwords.

2.16.840.1.113730.3.1.96OID

BinarySyntax

MultivaluedMulti- or Single-Valued

Directory ServerDefined in

4.1.28 passwordInHistory (pwdInHistory)

This attribute indicates the number of passwords the Directory Server stores in history. Passwords

that are stored in history cannot be reused by users. By default, password history is disabled so

that the Directory Server does not store any old passwords and users can reuse passwords. Enable

password history by using the passwordInHistory attribute.

To prevent users from rapidly cycling through the number of passwords that you are tracking,

use the passwordMinAge attribute.

2.16.840.1.113730.3.1.101OID

IntegerSyntax

Single-valuedMulti- or Single-Valued

Directory ServerDefined in

4.1.29 passwordLockout (pwdLockOut)

This attribute indicates whether users will be locked out of the directory after a given number

of failed bind attempts. By default, users will not be locked out of the directory after a series of

failed bind attempts. When account lockout is enabled, set the number of failed bind attempts

after which the user will be locked out using the passwordMaxFailure attribute.

2.16.840.1.113730.3.1.105OID

DirectoryStringSyntax

Single-valuedMulti- or Single-Valued

Directory ServerDefined in

4.1 Operational attributes 99